|If you're not running a firewall, or are using a default state for most firewalls, often times, they don't block Users from sending on port 25 directly to remove mail servers. This would bypass Exim, so wouldn't be desirable as you wouldn't have any way of tracking it.|
Related change to to our block_ip.sh iptables script
We recommend that you block port 25 out for all Users, with the exception of only allowing "mail" and "root".
"mail" is what exim uses to delivery outbound messages, and "root" is just left for manual testing/debugging.
If you're running CSF, set the following value:
SMTP_BLOCK = "1"while the block_ip iptables script will do this by default.
To manually test if this block is working, you'd see something like this:
[root@server ~]# id
|My server is sending spam. What do I do?|
|Fully block a DirectAdmin User account from sending any messages|
© 2018 JBMC Software, Suite 173 3-11 Bellerose Drive, St Albert, AB T8N 1P7 Canada. Mon-Fri 9AM-5PM MST